Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: I9WjE0uUk2CxL8q6RixmMhS/0zptaM0uDPt0GJN+Clo=
Subject key identifier: 34:E5:F9:A6:02:2E:07:E2:B0:FD:CF:AA:EF:5C:CD:63:6C:1F:FF:1F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 321C555AC28123E6D05FB6AB2F6DD558999AE4D7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:49 +0000
ROA not before: Mon 26 Sep 2022 10:55:49 +0000
ROA not after: Mon 25 Sep 2023 11:00:49 +0000
asID: 59282
IP address blocks: 2400:d680:3d3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:1c:55:5a:c2:81:23:e6:d0:5f:b6:ab:2f:6d:d5:58:99:9a:e4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:49 2022 GMT
Not After : Sep 25 11:00:49 2023 GMT
Subject: CN=34E5F9A6022E07E2B0FDCFAAEF5CCD636C1FFF1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cf:ad:91:23:25:e3:02:7e:ce:01:20:a0:e9:
48:80:68:74:b6:9f:e8:ef:67:bd:ec:a4:8d:3f:7f:
1c:b1:71:43:8b:33:e1:54:05:0d:a5:e1:a7:53:a9:
31:7e:72:05:0f:a0:d2:87:44:8c:0f:0b:76:99:53:
3c:97:ce:ea:16:97:81:10:dd:00:4a:0d:32:5c:2d:
d5:0f:cd:12:04:86:e3:e9:61:55:ee:1d:a9:af:f1:
f3:18:ed:e5:14:c1:c5:6e:e5:ae:00:c4:ab:5e:a6:
57:c6:1d:0f:13:68:d6:d8:b2:18:5d:8d:0e:ce:6b:
06:3c:22:19:ca:b9:bc:40:a1:99:32:f9:dc:0f:91:
5a:c5:3a:9a:51:bc:26:8e:c5:aa:43:83:2e:10:10:
95:a0:db:71:b7:00:07:6b:b8:bb:19:ac:dd:d4:8c:
e8:ee:ca:8f:00:3b:22:e6:8d:ef:f9:c1:f9:7c:db:
ae:07:b7:aa:d6:ef:0f:bb:67:3d:95:3f:65:31:c8:
0e:1a:dd:14:76:52:d0:de:0b:89:e5:fc:0c:23:ed:
67:6d:7e:6a:2d:66:4d:3b:07:90:00:bc:42:52:2f:
f3:2e:4a:e6:dc:c4:22:da:1a:6c:fb:e1:49:71:0b:
f8:90:33:c2:84:f7:0b:07:13:6f:25:20:48:92:00:
d5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E5:F9:A6:02:2E:07:E2:B0:FD:CF:AA:EF:5C:CD:63:6C:1F:FF:1F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d3::/48
Signature Algorithm: sha256WithRSAEncryption
cd:76:13:c3:91:2e:72:f3:4b:11:42:af:83:37:4d:75:0d:d4:
04:55:62:bb:60:57:91:8b:fe:4c:15:25:e1:45:a4:68:bc:69:
61:08:66:4c:7a:c3:e4:6d:09:d4:74:f7:7b:0e:9b:a2:33:4f:
3f:fc:76:b9:14:28:11:1e:32:c9:b9:27:93:17:a3:a6:63:89:
dc:26:83:20:3a:be:09:52:47:52:a5:7e:8a:75:41:4c:45:ca:
a1:07:3c:20:33:f1:9e:18:49:3a:ec:b3:8f:cc:7a:6f:7c:18:
bf:0d:05:9b:4a:ad:04:b8:5f:19:ec:b7:37:af:77:9c:0f:5a:
0f:c6:e1:65:98:82:ea:3e:1c:05:23:7d:16:90:98:a0:dd:af:
1a:3a:01:77:05:94:39:d7:f3:28:1b:be:2d:6e:c2:1c:b3:a2:
68:61:36:f3:00:55:8d:95:8b:5e:d2:79:67:24:4d:20:52:1d:
c1:e6:bb:e9:42:ca:93:95:05:9b:a9:5d:40:e9:91:ae:5d:ca:
35:3e:6a:4d:8b:d7:df:73:61:aa:c6:6a:22:e8:5c:ec:e4:c1:
67:a8:9d:8b:19:a2:01:32:c6:f5:2d:c1:07:a5:7a:ce:5c:9e:
17:86:1c:a0:65:b9:f1:3d:1e:07:4c:61:94:de:c7:5f:97:48:
b1:ec:5c:49
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMhxVWsKBI+bQX7arL23VWJma5NcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1NDlaFw0yMzA5MjUxMTAwNDlaMDMxMTAvBgNV
BAMTKDM0RTVGOUE2MDIyRTA3RTJCMEZEQ0ZBQUVGNUNDRDYzNkMxRkZGMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJz62RIyXjAn7OASCg6UiAaHS2
n+jvZ73spI0/fxyxcUOLM+FUBQ2l4adTqTF+cgUPoNKHRIwPC3aZUzyXzuoWl4EQ
3QBKDTJcLdUPzRIEhuPpYVXuHamv8fMY7eUUwcVu5a4AxKteplfGHQ8TaNbYshhd
jQ7OawY8IhnKubxAoZky+dwPkVrFOppRvCaOxapDgy4QEJWg23G3AAdruLsZrN3U
jOjuyo8AOyLmje/5wfl8264Ht6rW7w+7Zz2VP2UxyA4a3RR2UtDeC4nl/Awj7Wdt
fmotZk07B5AAvEJSL/MuSubcxCLaGmz74UlxC/iQM8KE9wsHE28lIEiSANWHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUNOX5pgIuB+Kw/c+q71zNY2wf/x8wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NDMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
0zANBgkqhkiG9w0BAQsFAAOCAQEAzXYTw5EucvNLEUKvgzdNdQ3UBFViu2BXkYv+
TBUl4UWkaLxpYQhmTHrD5G0J1HT3ew6bojNPP/x2uRQoER4yybknkxejpmOJ3CaD
IDq+CVJHUqV+inVBTEXKoQc8IDPxnhhJOuyzj8x6b3wYvw0Fm0qtBLhfGey3N693
nA9aD8bhZZiC6j4cBSN9FpCYoN2vGjoBdwWUOdfzKBu+LW7CHLOiaGE28wBVjZWL
XtJ5ZyRNIFIdwea76ULKk5UFm6ldQOmRrl3KNT5qTYvX33NhqsZqIuhc7OTBZ6id
ixmiATLG9S3BB6V6zlyeF4YcoGW58T0eB0xhlN7HX5dIsexcSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org